Cisco Bug: CSCvj15572 - Flow-offload rewrite rules not updated when MAC address of interface changes
Feb 07, 2019
- Cisco ASA 5500-X Series Firewalls
Known Affected Releases
Symptom: Flow offload rule written to the hardware engine do not get updated with updated MAC address of interface. Conditions: The interface MAC address of the unit (ASA/Firepower Threat Defense) gets changed either manually or some other automated means such as change in failover role (primary to secondary or vice versa) of a unit. Flow-offload has to be enabled on ASA (Firepower Threat Defense has it enabled automatically) and there should be existing flows being offloaded before the change in MAC address.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases